$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/69ea5e37-ad95-4815-8e82-1aa4f4f37ec6.roa File: 69ea5e37-ad95-4815-8e82-1aa4f4f37ec6.roa (raw, json) Hash identifier: sLnxgKJ96j1l2hCAbXBg6fnuk8Hqu3CLkqd8uvrJQ9Y= Subject key identifier: 81:1F:F7:9D:D0:53:A7:51:C4:26:04:90:20:D9:3B:DF:14:5E:A6:3E Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 54CC2C189EDB2119F7F690DF4690B597B43E5472 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/69ea5e37-ad95-4815-8e82-1aa4f4f37ec6.roa Signing time: Tue 22 Jul 2025 00:10:17 +0000 ROA not before: Tue 22 Jul 2025 00:10:17 +0000 ROA not after: Tue 26 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 13.160.32.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 07 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:cc:2c:18:9e:db:21:19:f7:f6:90:df:46:90:b5:97:b4:3e:54:72 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 22 00:10:17 2025 GMT Not After : Aug 26 23:59:59 2025 GMT Subject: serialNumber=69d522c6ac78f18921690342045558ce4d8b339cfbf973a10501b50f62157ef6, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:42:c6:70:71:6b:03:41:db:fc:95:e9:33:00: f6:2b:77:21:d0:4a:59:f6:d9:cc:ba:2a:b6:17:59: a7:1d:a5:ea:e9:38:72:dc:4a:c0:f3:10:fa:35:6a: d6:28:34:61:be:b7:8e:8c:65:82:6c:85:37:1c:5d: 50:ab:b6:97:f1:9b:d0:9b:af:53:62:88:1a:27:ec: 68:0a:d8:a8:b0:09:53:2a:07:fe:04:1b:7f:86:df: c1:7b:6c:d6:00:3a:35:41:9a:39:ee:6c:48:94:b2: f7:59:c6:4d:fa:14:b1:a5:ef:d1:e8:78:ba:dc:71: 16:4e:89:bd:5a:96:a4:49:44:70:fd:fa:bd:fc:09: 41:94:88:2d:1e:82:a6:2a:65:3b:c8:1f:c1:ce:cb: 61:14:61:93:fc:95:d0:d2:e3:08:02:34:12:1f:38: 72:4e:08:11:7a:49:0f:4c:5d:0a:33:97:2b:46:5a: 85:ea:bf:d1:cc:5f:a4:81:13:af:a8:4d:ac:a2:6f: 70:42:83:df:b6:0e:86:99:cf:fe:b0:aa:b7:9b:d8: 1e:e9:5d:bf:a0:d9:05:43:85:01:6e:54:6f:56:a7: 96:67:cc:25:d7:43:71:8a:f1:19:49:23:3c:ad:f2: e6:fc:df:30:63:e9:50:43:a3:7d:4b:cb:d5:4b:20: 95:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:1F:F7:9D:D0:53:A7:51:C4:26:04:90:20:D9:3B:DF:14:5E:A6:3E X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/69ea5e37-ad95-4815-8e82-1aa4f4f37ec6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 13.160.32.0/21 Signature Algorithm: sha256WithRSAEncryption 3d:83:aa:a0:13:19:8d:0a:fa:ff:fb:ba:ab:6d:49:c1:c0:e7: ed:1b:f6:20:c6:ae:e4:37:cb:bb:5e:24:ea:57:96:6c:ec:30: dd:6b:fc:80:96:50:40:1c:fb:96:4b:65:0d:b6:e8:f7:85:0f: 11:27:d5:6a:2e:58:a3:b9:32:60:d7:0b:70:23:16:e0:3f:0d: 71:37:65:48:aa:92:ae:ed:d3:62:f0:96:d2:0f:4d:ba:13:02: e1:16:74:fe:25:37:b6:f9:44:ff:9e:fb:a5:35:9a:a1:62:4e: 22:e5:96:f1:23:b9:fd:11:53:54:67:96:19:43:bd:a3:71:ff: 31:fa:cf:f4:4b:8c:a6:8f:e5:fd:a1:cb:4d:f8:7c:bc:e2:3f: 86:b1:c3:12:65:86:68:0d:9a:b6:05:c2:66:ab:bb:8c:91:6b: af:50:b3:17:bb:ad:ff:e1:43:3e:78:6f:87:21:e7:45:2f:fa: 1a:8a:ce:31:24:94:81:17:32:75:ec:6a:e2:cf:c4:62:27:99: 62:e2:8d:bc:25:09:31:63:2e:99:61:cf:eb:38:64:e5:e2:7c: a0:83:e7:16:2d:a2:87:16:91:73:f5:a7:31:3f:78:70:a2:b1: a8:9c:9f:f9:f5:94:77:e6:97:52:b4:c8:09:20:c5:35:9c:9e: c7:98:c8:a6 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUVMwsGJ7bIRn39pDfRpC1l7Q+VHIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzIyMDAxMDE3WhcNMjUwODI2MjM1OTU5 WjB6MUkwRwYDVQQFE0A2OWQ1MjJjNmFjNzhmMTg5MjE2OTAzNDIwNDU1NThjZTRk OGIzMzljZmJmOTczYTEwNTAxYjUwZjYyMTU3ZWY2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDEQsZwcWsDQdv8lekzAPYrdyHQSln22cy6KrYXWacdperp OHLcSsDzEPo1atYoNGG+t46MZYJshTccXVCrtpfxm9Cbr1NiiBon7GgK2KiwCVMq B/4EG3+G38F7bNYAOjVBmjnubEiUsvdZxk36FLGl79HoeLrccRZOib1alqRJRHD9 +r38CUGUiC0egqYqZTvIH8HOy2EUYZP8ldDS4wgCNBIfOHJOCBF6SQ9MXQozlytG WoXqv9HMX6SBE6+oTayib3BCg9+2DoaZz/6wqreb2B7pXb+g2QVDhQFuVG9Wp5Zn zCXXQ3GK8RlJIzyt8ub83zBj6VBDo31Ly9VLIJWzAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUgR/3ndBTp1HEJgSQINk73xRepj4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzY5ZWE1ZTM3LWFkOTUtNDgxNS04ZTgyLTFhYTRmNGYzN2VjNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAMNoCAwDQYJKoZIhvcNAQELBQADggEBAD2DqqATGY0K+v/7uqttScHA5+0b 9iDGruQ3y7teJOpXlmzsMN1r/ICWUEAc+5ZLZQ226PeFDxEn1WouWKO5MmDXC3Aj FuA/DXE3ZUiqkq7t02LwltIPTboTAuEWdP4lN7b5RP+e+6U1mqFiTiLllvEjuf0R U1RnlhlDvaNx/zH6z/RLjKaP5f2hy034fLziP4axwxJlhmgNmrYFwmaru4yRa69Q sxe7rf/hQz54b4ch50Uv+hqKzjEklIEXMnXsauLPxGInmWLijbwlCTFjLplhz+s4 ZOXifKCD5xYtoocWkXP1pzE/eHCisaicn/n1lHfml1K0yAkgxTWcnseYyKY= -----END CERTIFICATE-----Generated at Wed Aug 6 13:02:56 2025 by rpki-client